Vulnerabilities > CVE-2007-4254 - Remote Security vulnerability in Microsoft products

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
microsoft
exploit available

Summary

Stack-based buffer overflow in a certain ActiveX control in VDT70.DLL in Microsoft Visual Database Tools Database Designer 7.0 for Microsoft Visual Studio 6 allows remote attackers to execute arbitrary code via a long argument to the NotSafe method. NOTE: this may overlap CVE-2007-2885 or CVE-2005-2127.

Vulnerable Configurations

Part Description Count
Application
Microsoft
2

Exploit-Db

descriptionMicrosoft Visual 6 (VDT70.DLL NotSafe) Stack Overflow Exploit. CVE-2007-4254. Remote exploit for windows platform
fileexploits/windows/remote/4259.txt
idEDB-ID:4259
last seen2016-01-31
modified2007-08-06
platformwindows
port
published2007-08-06
reporterDeltahackingTEAM
sourcehttps://www.exploit-db.com/download/4259/
titleMicrosoft Visual 6 VDT70.DLL NotSafe Stack Overflow Exploit
typeremote